Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VALS, vlan acces list

hi all,

On my catalyst  3750; im planning to make a very particular acess list between the server vlan and client vlan,

what i need to do is the following :

1 allow acces in one way, from the server vlan to user vlan  and on a specific ports ( backup agent, anti-virus agent, snmp)

2 the user vlan can't acces to the server vlan but can acces to the internet

3 the servers vlan can acces to the internet

how can i do this (exemple plz)

regards

Everyone's tags (4)
2 REPLIES
Purple

VALS, vlan acces list

Hi,

IP communication is bidirectional so you can't  do both 1 and 2 points you wish to achieve.

You'll have to permit return traffic from user to server in response to server-user communication.

You can achieve this using ACL on VLAN interfaces.

But  what is the goal of only permitting traffic from server to user and return traffic as the intial traffic is always from the client to the server?

Regards.

Alain

Don't forget to rate helpful posts.
New Member

VALS, vlan acces list

hi,

i explain, i want that the traffic can be only initiated by the server vlan

for example, a backup server need to contact a machine on the backup client, this kind of acl are well apreciated for the security.

311
Views
0
Helpful
2
Replies
CreatePlease login to create content